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AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 
Listing of Claims: 

1. (currently amended) A method of operation of a logical unit to facilitate ft* 
secure communication between first and second domains comprising: 

receiving an encrypted data transmissi on over an outbound proxy from a security 
client disposed in th e first domain: 

identifying a sender of aw the encrypted data transmission rocoivod from a logioal 
twit using a personal identifier associated with the data transmission; 

determining whether the sender is authorized to perform the data transmission; 

determining whether the data transmission is recoonized: 

decrypting the data transmission if it is determined that the data transmission is 
recoonized and the sender is authorized to perform the data transmission; and 

transmitting the decrypted data transmission to an application server disposed in 
the second domain. 

2. (original) The method of claim 1 wherein the personal identifier is one of a 
biometric and a digital signature. 

3. (original) The method of claim 1 wherein determining whether the sender 
is authorized to perform the data transmission includes checking an access control list 
to determine the sender's privilege level. 

4. (currently amended) The method of claim 1 further comprising preventing 
the data transmission from reaching the application server if it is determined that the 
data transmission is not recoonized and the sender is not authorized to perform the data 
transmission function. 
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5, (original) The method of claim 1 further comprising enhancing the data 
transmission prior to sending the data transmission. 

6. (currently amended) An article of manufacture comprising: 

a computer usable medium having computer readable program code embodied 
therein for securely transmitting data from a trusted domain to an untrusted domain 
comprising: 

computer readable program code for causing a first logical unit to receive an 
enhanced data transmission over an outbound proxy from a second logical unit; 

fifst computer readable program code for causing a the first logical unit to identify 
a sender of a* the enhanced data transmission received from a socond l og i c al uru t; 

computer r eadable program code for causing the first logical unit to determine 
whether the enhanced data transmission is recognized; 

computer readable program code for causing the first logical unit to d e t e rm i n i ng 
determine whether the sender is authorized to perform the enhanced data transmission; 
and 

computer readable program code for causing the first logical unit to de-enhance 
the data transmission if it is determined that the enhanced data transmission is 
recognized and that the sender is authorized to perform the enhanced data 
transmission : and 

computer readable program code for causing the first logical unit to send the de- 
enhanced data transmission to a third logical unit. 

7\ (original) The article of manufacture of claim 6 wherein the data in the 
enhanced data is encrypted. 

8. (original) The article of manufacture of claim 6 wherein enhanced data 
includes biornetrically secured data. 

9. (original) The article of manufacture of claim 6 further comprising 
computer readable program code for causing the first logical unit to determine a 
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privilege level of the sender by searching an access control list that contains the 
sender's privilege level. 

10. (original) The article of manufacture of claim 6 further comprising program 
code for preventing the data from reaching the third logical unit if it is determined that 
the sender is not authorized to transmit the data. 

1 1 . (currently amended) A logical unit programmed to facilitate secure 
communication between first and second domains comprising: 

a processor programmed to receive enhanced data transmitted from a first 
logical unit and to identify the sender of the enhanced data , said processor including a 
plurality of proxies, at least one of the plurality of proxies corresponding to an outbound 
proxy of the first logical unit : 

an access control list stored in a memory location including inc l uding access 
rights for the sender; 

said processor further being programmed to query said access control list to 
determine whether the sender has sufficient rights to perform the data transmission? 
said procossor boing further programmed to do enhance the dat a and to transmit the 
data to th o c ocond doma i n wh e n rt is - d e torminod that th e c ondor has suffic i ent rights to 
p e rform data transmicoion . 

12. (currently amended) A logical system for secure communication between 
first and second domains: 

a first logical unit configured to enhance data and to transmit the enhanced data 
through an outbound proxy across the first secure domain; 

a second logical unit having a plurality of proxies, at least one of the plurality of 
proxies cor responding to the outbound proxy of the first logical unit, said second logical 
unit being configured to receive data from said first logical unit, said second logical unit 
defining a boundary between the first domain and the second domain, said second 
logical unit being further configured to identify a sender of the enhanced data, to 
determine whether the sender has sufficient rights to perform the data transmission, 
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said processor being further configured to de-enhance the data and to transmit the data 
to a logical unit in the second domain when it is determined that the sender has 
sufficient rights to perform data transmission. 

1 3. (new) The method of claim 1 wherein determining whether the data 
transmission is recognized includes comparing proxies contained in said first logical unit 
to the outbound proxy of the security client. 

14. (new) The logical unit of claim 1 1 wherein said processor is further 
programmed to de-enhance the data and to transmit the de-enhanced data to a logical 
unit in one of the first and second domains. 
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